Launched this week
Bugbop

Bugbop

Run Security Bug Bounties with less noise and fair pricing

7 followers

Visit website
Bugbop helps you secure your app with a simple bug bounty program. Pay only if real bugs are found. Start by adding $575 your "bounty wallet" to list your program and start finding real security bugs. No bugs found? Your money back. Either self-serve or book a call to get set up within an hour. Bugbop uses AI to set severity (because every bug hunter says their bug is "Critical"), filter duplicates, and check if the bugs are valid or not.
Bugbop gallery image
Bugbop gallery image
Bugbop gallery image
Free
Launch tags:SaaSHackingSecurity
Launch Team / Built With
Turbotic Automation AI
Turbotic Automation AI
Build powerful automations without code. 1 Month Free!
Promoted

What do you think? …

John Sherwood
Maker
📌
I'm a SaaS technical founder who ran a bug bounty program for years. People have been complaining about the existing platforms being too expensive and clunky for years. I've stepped up to build a platform that suits the reality of program management. The app's already up and running. It's got real programs, real bug hunters, and real bounties being paid. It's still early days so I'd love feedback. Most companies don't run a bug bounty program but I think they (almost) all should. Do you? If not, why not?
Bernie Abagail

We have been running a public big bounty program on this platform as a part of the early release for the last 8 months or so.

Here are some key differences and benefits that we found that work better.

1) less noise. Les b******* crap. There are still some b******* reported issues but it's easy to do the AI triage.

2) better pricing for smaller size apps like us. We looked and couldn't really run an open program in bugcrowd or the other larger places.

3) the AI triage works well.

4) absolutely better pricing.. no monthly fees, you simply add credit and it stays on the account to be used on bounties that you pay out.

5) no monthly subscription.

6) responsive founding team for suggestions

7) there is no pressure to make the issue public after resolution. This only helps the bounty Hunter but it doesn't help the company running the program.

What could be better

1) possibly an internal only comment section on tickets to make notes.

2) ability to restrict bounty hunters from certain geographies

3) invite specific bounty hunters

Bernie Abagail

Typing from my phone, excuse the formatting

We have been running a public big bounty program on this platform as a part of the early release for the last 8 months or so.

Here are some key differences and benefits that we found that work better.

1) less noise. Les b******* crap. There are still some b******* reported issues but it's easy to do the AI triage.

2) better pricing for smaller size apps like us. We looked and couldn't really run an open program in bugcrowd or the other larger places.

3) the AI triage works well.

4) absolutely better pricing.. no monthly fees, you simply add credit and it stays on the account to be used on bounties that you pay out.

5) no monthly subscription.

6) responsive founding team for suggestions

7) there is no pressure to make the issue public after resolution. This only helps the bounty Hunter but it doesn't help the company running the program.

What could be better

1) possibly an internal only comment section on tickets to make notes.

2) ability to restrict bounty hunters from certain geographies

3) invite specific bounty hunters